CVE-2006-4925

Severity :

Medium

Published :

2006-09-28

Modified :

2010-09-15

Base Score :

5.0

Details :

packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be NULL.